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Top Stories 

• BMW announced a recall of 76,565 model year 2006 and 2007 vehicles equipped with 
certain seat types due to an issue that could cause the airbags to fail to deploy in a crash. - 
Car Connection (See item 4) 

• A section of U.S. Interstate 35 in Mason County, West Virginia, was closed for several 
hours following a chemical leak from a semi-truck. - Point Pleasant Register (See item 9) 

• An explosion at Gate City Apartments in Birmingham, Alabama, injured 8, killed 1 
resident, and destroyed 4 units. - WVTM 13 Birmingham (See item 27) 

• A large four-alarm fire at a warehouse complex in St. Louis, Missouri caused extensive 
damage to the structure. - St. Louis Post-Dispatch (See item 28) 
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Energy Sector 



1. December 17, Threatpost - (International) ICS-CERT warns of flaws in wind farm 
management app. The Industrial Control Systems Cyber Emergency Response Team 
(ICS-CERT) warned wind farm operators using the Nordex NC2 control portal that the 
software contains a reflected cross-site scripting (XSS) vulnerability that could be 
exploited remotely and used by an attacker to run arbitrary code. 

Source: http://threatpost.com/ics-cert-warns-of-flaw-in-wind-farm-management- 
app/103212 

2. December 16, Associated Press - (Utah) Report: Utah tunnel wasn’t secure, worker 
killed. The U.S. Mine Safety and Health Administration released a report on a tunnel 
collapse that killed one worker in a mine near Huntington, Utah, and found that the 
mine’s owner did not sufficiently support the mine’s ceiling, leading to the collapse. 
The report stated that the mine owner was cited for roof-control issues and that signs of 
a potential collapse were seen before the cave-in. 

Source: http://www.sfgate.com/business/energy/article/Report-Utah-tunnel-wasn-t- 
secure-worker-killed-5069278.php 

[ Return to top ] 

Chemical Industry Sector 

Nothing to report 
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Nuclear Reactors, Materials, and Waste Sector 

Nothing to report 
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Critical Manufacturing Sector 

3. December 16, Reuters - (International) Eurocopter issues safety alert over EC135 
fuel gauge error. Eurocopter warned operators of its EC 135 helicopter that tests by an 
operator in the U.K. following a crash and by two other operators in Europe identified a 
fuel gauge issue that can overestimate the fuel remaining onboard. 

Source: http ://www .reuters . com/article/20 13/12/1 6/britain-helicopters- 
idUSL6N0JV4I920131216 

4. December 16, Car Connection - (National) BMW recalls over 76,000 vehicles from 
2006 & 2007 due to air bag flaw. BMW announced a recall of 76,565 model year 
2006 and 2007 3-Series, 5-Series, 7-Series, and X5 vehicles equipped with certain seat 
types due to an issue with occupant-detection mats that could degrade over time and 
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fail to deploy the airbag in a crash. 

Source: http://www.thecarconnection.com/news/1089140 bmw-recalls-over-76000- 
vehicles-from-2006-2007-due-to-air-bag-flaw 
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Defense Industrial Base Sector 



Nothing to report 



[ Return to top ] 



Financial Services Sector 

5. December 17, Bay Area News Group - (California) FBI: “Bad Beard Bandit” tied to 
bank robberies in East Bay, South Bay. The FBI asked for the public’s assistance in 
identifying a bank robbery suspect known as the “Bad Beard Bandit”, responsible for 
five bank robberies in the East Bay and South Bay areas of California beginning in 
November. 

Source: http://www.contracostatimes.com/news/ci 24734805/suspect-dubbed-bad- 
beard-bandit-tied-five-califomia 

6. December 16, Bakersfield Californian - (California) Real estate executive, wife plead 
guilty in court. The former chief executive of real estate firm Crisp, Cole & Associates 
and his wife pleaded guilty December 16 for their role in a mortgage fraud scheme in 
Bakersfield that caused foreclosures and cost lenders $29.8 million. 

Source: http://www.bakersfieldcalifomian.com/local/x350994751/David-Jennifer- 
Crisp-plead-guiltv-in-court 

7. December 16, Reuters - (International) Six indicted in Nevada accused of fraud in 
international investment scheme. Six men from the U.S. and Switzerland were 
indicted in federal court in Nevada for allegedly running an investment fraud scheme 
that supplied fake documentation linked to a Swiss company, allegedly defrauding 12 
investors of at least $5.6 million. Three suspects were arrested and three others remain 
at large. 

Source: http://wtaq.com/news/articles/2013/dec/16/six-indicted-in-nevada-accused-of- 
fraud-in-intemational-investment-scheme/ 

8. December 16, Newark Star-Ledger - (New Jersey) Attorney, tax preparer admit 
roles in $30M mortgage fraud. An attorney and a tax preparer pleaded guilty to their 
part in running a mortgage fraud scheme through a Woodbridge, New Jersey-based 
mortgage brokerage firm between 2006 and 2010, defrauding mortgage companies of 
$30 million using fraudulent documentation. 

Source: 

http://www.ni.com/union/index.ssf/2013/12/attornev tax preparer admit roles in 30 
million mortgage fraud.html 
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Transportation Systems Sector 

9. December 16, Point Pleasant Register - (West Virginia) Three lanes of U.S. 35 
reopened after chemical spill. A section of U.S. 35 in Mason County was closed for 
several hours December 16 following a chemical leak from a semi-truck carrying a 
hexamine solution. There were no injuries and the chemical posed no immediate 
danger to the public. 

Source: http ://www .mvdailvregister.com/news/home top/2 872448/UPDATED : -Three- 
lanes-of-U.S.-35-reopened-after-chemical-spill 

10. December 17, San Jose Mercury News - (California) San Jose airport Terminal A 
back open for business one day after flooding. A water line that broke December 16 
resulted in flooding of Terminal A at Mineta San Jose International Airport in 
California, forcing the closure of the area and delaying or cancelling several flights. 
Repairs were made and half of the security checkpoints in the terminal reopened 
December 17. 

Source: http://www.contracostatimes.com/news/ci 24739648/san-iose-airport-terminal- 
back-open-business-one 

11. December 17, Bergen County Record - (New York) Emergency road repairs finished 
on George Washington Bridge. Emergency repairs on a support beam under the 
roadway on the George Washington Bridge in New York City resulted in the overnight 
closure of two westbound lanes December 16. The lanes reopened December 17, but 
are expected to close each night during the week of December 16 for additional repairs. 
Source : 

http://www.northjersey.eom/news/2 westbound GWB lanes reopen after repairs.htm 
1 

12. December 17, WCBV 5 Boston - (Massachusetts) OSHA cites Postal Service in letter 
carrier's July heat death. The U.S. Department of Labor's Occupational Safety and 
Health Administration (OSHA) cited the U.S. Postal Service (USPS) in the heat-related 
death of a Haverhill mail carrier. OSHA concluded USPS had not implemented an 
adequate heat stress management program to aid in the prevention of heat-related 
illnesses and proposed $7,000 in fines. 

Source : http://www.wcvb.com/news/local/boston-north/osha-cites-postal-service-in- 
letter-carriers-july-heat-death/-/l 1984708/235 1 1438/-/w4qab2z/-/index.html 



For another story, see item 3 
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Food and Agriculture Sector 
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13. December 17, U.S. Department of Labor - (Kansas) Tyson Foods cited by US Labor 
Department's OSHA for 4 workplace safety violations after worker's hand 
severed by unguarded machine. December 17 the U.S. Department of Labor's 
Occupational Safety and Health Administration (OSHA) cited Tyson Foods Inc. for 
four workplace safety violations at its prepared foods manufacturing plant in 
Hutchinson. Proposed fines totaled $147,000. 

Source: 

https://www.osha.gov/pls/oshaweb/owadisp.show document?p table=NEWS RELEA 
SES&p id=25260 

14. December 17, U.S. Food and Drug Administration - (National) Stone Independent 
Research Inc. issues allergy alert on undeclared milk in EnhanceRx dietary 
supplement. Stone Independent Research, Inc. of Syracuse, New York, recalled 15,657 
units of dietary supplement EnhanceRx due to undeclared milk. A U.S. Food and Drug 
Administration investigation indicated that a breakdown in the production and 
packaging processes led to the issue. 

Source: 

http://www.foodconsumer.org/newsite/Shopping/Alerts/dietary supplement allergy al 
ert 1216130645.html 



15. December 16, U.S. Department of Labor - (Georgia) Ole Mexican Foods cited for 
more than $150,000 by US Labor Department's OSHA for exposing workers to 
amputation and other hazards. Ole Mexican Foods was cited by the U.S. Department 
of Labor's Occupational Safety and Health Administration December 16 for 2 repeat, 

14 serious, and 3 other-than-serious safety and health violations at its Norcross 
corporate headquarters. Proposed fines totaled $150,040. 

Source: 

https://www.osha.gov/pls/oshaweb/owadisp.show document?p table=NEWS RELEA 
SES&p id=25245 

16. December 16, Food Poisoning Bulletin - (National) Zanocap capsules recalled for 
undeclared milk. Stone Independent Research, Inc. of Syracuse, New York, recalled 
1,040 units of dietary supplement Zanocap Scientific Weight Loss 500 milligram 
capsules due to undeclared milk. A U.S. Food and Drug Administration investigation 
indicated that a breakdown in the production and packaging processes led to the issue. 
Source: http://foodpoisoningbulletin.com/2013/zanocap-capsules-recalled-for- 
undeclared-milk/ 
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Water and Wastewater Systems Sector 

17. December 15, Longmont Times-Call - (Colorado) Flood damage leaves Longmont’s 
Main Street bridge with pump station through spring. Engineers discovered that the 
sewer line beneath the Main Street bridge in Longmont was damaged in a September 
flood, leaving the Southmoor Park neighborhood dependent on privately-operated 
pump station to manage and monitor the sewer line for $70,000 a month until repairs 
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can be completed in spring 2014. 

Source: http://www.timescall.com/ncws/colorado-flood/ci 24737 1 70/flood-damage- 
leaves-longmont-main-street-bridge-pump 
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Healthcare and Public Health Sector 

Nothing to report 
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Government Facilities Sector 

18. December 17, Softpedia - (Colorado) Social Security numbers of 18,800 Colorado 
state workers exposed. The Colorado Governor’s Office of Information Technology 
reported that an unencrypted thumb drive containing names, Social Security numbers, 
and some addresses of about 18,800 State employees was lost, potentially exposing the 
information. Those affected are being notified. 

Source: http://news.softpedia.com/news/Social-Securitv-Numbers-of-18-800-Colorado- 
S tate-W orkers-Exposed-409928 . shtml 

19. December 17, Softpedia - (North Carolina) UNC at Chapel Hill suffers data breach, 
6,000 people impacted. Personal information of current and former employees, 
students, and vendors at the University of North Carolina at Chapel Hill were 
accidentally made publicly available when safeguards were disabled during 
maintenance and Google indexed the files. Those affected are being contacted and 
Google was asked to take down the indexed records. 

Source: http://news.softpedia.com/news/UNC-at-Chapel-Hill-Suffers-Data-Breach-6- 
000-People-Impacted-409901 .shtml 

20. December 16, Forum of Fargo-Moorhead - (North Dakota) Heating problems force 
Central Cass to cancel classes Monday. The Central Cass school in Casselton 
canceled classes December 16 due to a heating regulator issue that caused excessively 
high temperatures in the school. Classes were scheduled to resume December 17 after 
repairs were made. 

Source: http://www.inforum.com/event/article/id/421339/ 

T Return to top i 

Emergency Services Sector 

21. December 16, Austin American-Statesman - (Texas) Austin 911 crash caused delays 
as calls were rerouted. Primary and backup systems in Travis County stopped 
receiving 9-1-1 calls for almost 6 hours December 16, which affected the callers’ wait 
times. A glitch in the computer system was suspected as the cause and calls were 
rerouted to neighboring departments during the disruption. 
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Source: http://www.statesman.com/news/news/crime-law/austin-911-crash-caused- 
delays-as-calls-were-rerou/ncMgt/ 

For another story, see item 3 
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Information Technology Sector 

22. December 17, Help Net Security - (International) Mozilla blocks rogue add-on that 
made computers scan sites for flaws. Mozilla added a malicious Firefox extension to 
its block list after it was found to be the basis for a botnet that used infected computers 
to search Web sites for vulnerabilities using SQL injection attacks. 

Source: http://www.net-securitv.org/malware news.php?id=2657 

23. December 17, Softpedia - (International) Browlock cybercriminals use malvertising 
to lure victims to malicious site. Symantec researchers found that the cybercriminals 
behind the Browlock browser-based ransomware have been targeting a large number of 
users by using malicious advertising, or malvertising, to direct users to Web sites 
hosting the ransomware. 

Source: http://news.softpedia.com/news/Browlock-Cvbercriminals-Use-Malvertising- 
to-Lure- Victims-to-Malicious-Site-4 1 0007 . shtml 

24. December 17, Threatpost - (International) Chewbacca latest malware to take a liking 
to TOR. Researchers at Kaspersky Lab identified a new malware campaign dubbed 
Chewbacca that is using The Onion Router (TOR) to communicate with command and 
control servers. The malware drops a keylogger on infected systems and then relays the 
information back to its servers via TOR. 

Source: http://threatpost.com/chewbacca-latest-malware-to-take-a-liking-to-tor/103220 

25. December 17, U.S. Consumer Product Safety Commission - (National) Google and HP 
recall HP Chromebook 11 chargers due to fire and burn hazards; charger can 
overheat and melt. Google and HP announced a recall of about 145,000 HP 
Chromebook 1 1 chargers due to an issue that can cause the charger to overheat and 
melt, posing fire and burn hazards. 

Source: http://www.cpsc.gov/en/Recalls/2014/Google-and-HP-Recall-HP- 
Chromebook- 1 1 -Chargers/ 

26. December 16, IDG News Service - (International) Attackers exploited ColdFusion 
vulnerability to install Microsoft IIS malware. Researchers at Trustwave reported 
that a remote authentication bypass vulnerability in Adobe ColdFusion was used to 
infect Internet Information Server (IIS) Web servers with the ISN malware. The 
vulnerability was previously patched by Adobe in January. 

Source: http://www.networkworld.com/news/2013/121613-attackers-exploited- 
coldfusion-vulnerability-to-276957.html 



For another story, see item 1 
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Internet Alert Dashboard 



To report cyber infrastructure incidents or to request information, please contact US-CERT at soc@us-cert.gov or 
visit their Web site: http://www.us-cert.gov 

Information on IT information sharing and analysis can be found at the IT ISAC (Information Sharing and 
Analysis Center) Web site: http://www.it-isac.org 



[ Return to top ] 



Communications Sector 

Nothing to report 
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Commercial Facilities Sector 

27. December 17, WVTM 13 Birmingham - (Alabama) One dead after Gate City 
apartment explosion. An explosion at Gate City Apartments in Birmingham injured 
eight and killed one resident December 17. Four units were destroyed and the cause 
was thought to be related to a gas leak. 

Source: http://www.alabamasl3.com/storv/24237558/moming-explosion-in-the-gate- 
city-community 

28. December 17, St. Louis Post Dispatch - (Missouri) Fire destroys massive warehouse 
south of downtown St. Louis. More than 80 firefighters responded to a four-alarm fire 
December 16 at a warehouse at the Cruden-Martin Woodenware complex in St. Louis. 
The building was extensively damaged and the cause was under investigation. 

Source: http://www.stltodav.com/news/local/crime-and-courts/crews-battling— alarm- 
warehouse-fire-in-st-louis/article aa47c8d7-0e9a-530f-86e l-773b5578clec.html 

29. December 17, WILX 10 Onondaga - (Michigan) Gas leak closes Lansing Mall for 
several hours. A snow plow hit a gas line at the Lansing Mall December 16 and caused 
a gas leak, closing the mall for several hours as authorities worked to ensure that the 
mall could be reopened safely later that afternoon. 

Source: http://www.wilx.com/news/headlines/236099691.html 
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Dams Sector 



Nothing to report 
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NTAS 



NO ACTIVE ALERTS 
www.DHS.gov/alerts 



Department of Homeland Security (DHS) 

DHS Daily Open Source Infrastructure Report Contact Information 



About the reports - The DHS Daily Open Source Infrastructure Report is a daily [Monday through Friday] 
summary of open-source published information concerning significant critical infrastructure issues. The DHS Daily 
Open Source Infrastructure Report is archived for 10 days on the Department of Homeland Security Web site: 
http://www.dhs.gov/IPDailyReport 

Contact Information 

Content and Suggestions: Send mail to cikr.productfeedback@hq.dhs.gov or contact the DHS 

Daily Report Team at (703) 942-8590 

Subscribe to the Distribution List: Visit the DHS Daily Open Source Infrastructure Report and follow 

instructions to Get e-mail updates when this information changes . 

Removal from Distribution List: Send mail to support @ govdelivery.com . 



Contact DHS 

To report physical infrastructure incidents or to request information, please contact the National Infrastructure 
Coordinating Center at nicc@hq.dhs.gov or (202) 282-9201. 

To report cyber infrastructure incidents or to request information, please contact US-CERT at soc@us-cert.gov or visit 
their Web page at www.us-cert.gov . 

Department of Homeland Security Disclaimer 

The DHS Daily Open Source Infrastructure Report is a non-commercial publication intended to educate and inform 
personnel engaged in infrastructure protection. Further reproduction or redistribution is subject to original copyright 
restrictions. DHS provides no warranty of ownership of the copyright, or accuracy with respect to the original 
source material. 
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